6b719ea226
[DOCS] Specify docker tag for readme badges ( #1593 )
...
Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2021-01-13 12:48:57 +11:00
b68ebda83e
[CI] Fix CI/CD for forked master branches ( #1596 )
...
An extra filter needed to be removed and pull request branch filtering on Buildkite changed to ensure that forked `master` branches actually receive CI/CD treatments.
2021-01-13 12:45:15 +11:00
e6111f775b
[CI] Update PR commentary ( #1592 )
...
This change updates the PR commentary specifically around linting.
We now also allow users to submit PR's to Authelia from forked `master` branches as this previously caused issues with codecov.
2021-01-12 12:21:01 +11:00
6aa0e5fa7d
[MISC] (deps): Bump haproxy in /internal/suites/example/compose/haproxy ( #1591 )
...
Bumps haproxy from 2.3.2-alpine to 2.3.3-alpine.
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2021-01-11 10:01:26 +11:00
2c14d827ba
[RELEASE] v4.25.1 ( #1590 )
2021-01-11 06:19:53 +11:00
712288555c
[BUGFIX] Fix incorrect docs and Certificate PEM extensions ( #1589 )
...
* add .crt to the PEM extensions scanned for
* fix documentation on the extensions allowed
* add trace logging to the loading process to help debug in the future
2021-01-10 22:10:45 +11:00
525e08037c
[MISC] (deps): Bump @types/jest from 26.0.19 to 26.0.20 in /web ( #1587 )
...
Bumps [@types/jest](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/jest ) from 26.0.19 to 26.0.20.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/jest )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2021-01-07 22:30:49 +11:00
40f13166c3
[CI] Simplify coverage Dockerfile ( #1583 )
...
Instead of mocking the index.html and openapi.yml copy the actual files across.
2021-01-05 13:35:04 +11:00
079d069cd6
[CI] Update QEMU to v5.2.0-2 ( #1582 )
2021-01-05 12:54:37 +11:00
a5fd25ca52
[MISC] (deps): Bump @types/node from 14.14.19 to 14.14.20 in /web ( #1581 )
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 14.14.19 to 14.14.20.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2021-01-05 11:24:48 +11:00
5300c9ea6a
[MISC] (deps): Bump eslint-plugin-prettier from 3.3.0 to 3.3.1 in /web ( #1580 )
...
Bumps [eslint-plugin-prettier](https://github.com/prettier/eslint-plugin-prettier ) from 3.3.0 to 3.3.1.
- [Release notes](https://github.com/prettier/eslint-plugin-prettier/releases )
- [Changelog](https://github.com/prettier/eslint-plugin-prettier/blob/master/CHANGELOG.md )
- [Commits](https://github.com/prettier/eslint-plugin-prettier/compare/v3.3.0...v3.3.1 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2021-01-05 10:51:48 +11:00
5feb845914
[MISC] (deps): [Security] Bump nokogiri from 1.10.10 to 1.11.0 in /docs ( #1579 )
...
Bumps [nokogiri](https://github.com/sparklemotion/nokogiri ) from 1.10.10 to 1.11.0. **This update includes a security fix.**
- [Release notes](https://github.com/sparklemotion/nokogiri/releases )
- [Changelog](https://github.com/sparklemotion/nokogiri/blob/master/CHANGELOG.md )
- [Commits](https://github.com/sparklemotion/nokogiri/compare/v1.10.10...v1.11.0 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2021-01-05 09:38:06 +11:00
c9ff1119a0
[RELEASE] v4.25.0 ( #1578 )
2021-01-04 22:24:32 +11:00
9ca0e940da
[FEATURE] Validate ACLs and add network groups ( #1568 )
...
* adds validation to ACL's
* adds a new networks section that can be used as aliases in other sections (currently access_control)
2021-01-04 21:55:23 +11:00
29a900226d
[FEATURE] Enhance LDAP/SMTP TLS Configuration and Unify Them ( #1557 )
...
* add new directive in the global scope `certificates_directory` which is used to bulk load certs and trust them in Authelia
* this is in ADDITION to system certs and are trusted by both LDAP and SMTP
* added a shared TLSConfig struct to be used by both SMTP and LDAP, and anything else in the future that requires tuning the TLS
* remove usage of deprecated LDAP funcs Dial and DialTLS in favor of DialURL which is also easier to use
* use the server name from LDAP URL or SMTP host when validating the certificate unless otherwise defined in the TLS section
* added temporary translations from the old names to the new ones for all deprecated options
* added docs
* updated example configuration
* final deprecations to be done in 4.28.0
* doc updates
* fix misc linting issues
* uniform deprecation notices for ease of final removal
* added additional tests covering previously uncovered areas and the new configuration options
* add non-fatal to certificate loading when system certs could not be loaded
* adjust timeout of Suite ShortTimeouts
* add warnings pusher for the StructValidator
* make the schema suites uninform
* utilize the warnings in the StructValidator
* fix test suite usage for skip_verify
* extract LDAP filter parsing into it's own function to make it possible to test
* test LDAP filter parsing
* update ErrorContainer interface
* add tests to the StructValidator
* add NewTLSConfig test
* move baseDN for users/groups into parsed values
* add tests to cover many of the outstanding areas in LDAP
* add explicit deferred LDAP conn close to UpdatePassword
* add some basic testing to SMTP notifier
* suggestions from code review
2021-01-04 21:28:55 +11:00
3487fd392e
[FEATURE] Add API docs and swagger-ui ( #1544 )
...
* [FEATURE] Add API docs and swagger-ui
This change will serve out swagger-ui at the `/api/` root path.
* Update descriptions and summaries in API spec
* Utilise frontend assets from unit testing for Docker build steps
* Fix tag for /api/user/* endpoints
* Fix response schema for /api/user/info/2fa_method
* Template and inject the session name during runtime into swagger-ui
This change also factorises and renames index.go into template.go, this can now be generically utilised to template any file.
* Fix integration tests
* Add U2F endpoints
* Change swagger directory to api
This change is to more closely conform to the golang-standards project layout.
* Add authentication for u2f endpoints
* Modify u2f endpoint descriptions
* Rename and fix u2f 2fa sign endpoints
* Fix request body for /api/secondfactor/u2f/sign endpoint
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2021-01-03 15:28:46 +11:00
689fd7cb95
[CI] Add linting option for frontend and enforce styling ( #1565 )
...
We now extend the default Eslint configuration and enforce styling with prettier for all of our frontend code.
2021-01-02 21:58:24 +11:00
a5ea31e482
[MISC] (deps): Bump @types/node from 14.14.17 to 14.14.19 in /web ( #1577 )
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 14.14.17 to 14.14.19.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2021-01-02 07:51:55 +11:00
b20f62b015
Update example to set correct internal trusted ranges. ( #1575 )
2021-01-02 07:36:12 +11:00
baaaf1e8a5
[MISC] (deps): Bump qrcode.react from 1.0.0 to 1.0.1 in /web ( #1574 )
...
Bumps [qrcode.react](https://github.com/zpao/qrcode.react ) from 1.0.0 to 1.0.1.
- [Release notes](https://github.com/zpao/qrcode.react/releases )
- [Changelog](https://github.com/zpao/qrcode.react/blob/master/CHANGELOG.md )
- [Commits](https://github.com/zpao/qrcode.react/compare/v1.0.0...v1.0.1 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2020-12-31 13:17:02 +11:00
a6066288bc
[MISC] (deps): Bump @types/node from 14.14.16 to 14.14.17 in /web ( #1573 )
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 14.14.16 to 14.14.17.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2020-12-31 13:01:33 +11:00
5d76db1794
[MISC] (deps): Bump @types/react-router-dom from 5.1.6 to 5.1.7 in /web ( #1572 )
...
Bumps [@types/react-router-dom](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/react-router-dom ) from 5.1.6 to 5.1.7.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/react-router-dom )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2020-12-31 12:20:26 +11:00
0f33166ae0
[MISC] (deps): Bump query-string from 6.13.7 to 6.13.8 in /web ( #1570 )
...
Bumps [query-string](https://github.com/sindresorhus/query-string ) from 6.13.7 to 6.13.8.
- [Release notes](https://github.com/sindresorhus/query-string/releases )
- [Commits](https://github.com/sindresorhus/query-string/compare/v6.13.7...v6.13.8 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2020-12-31 08:28:49 +11:00
620f51d610
[MISC] (deps): Bump arm64v8/alpine from 3.12.2 to 3.12.3 ( #1571 )
...
Bumps arm64v8/alpine from 3.12.2 to 3.12.3.
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2020-12-31 08:07:29 +11:00
49ae9b0a69
[CI] Update QEMU to v5.2.0-1 ( #1567 )
...
* [CI] Update QEMU to v5.2.0-1
* Fix linting error from golangci-lint 1.34.1 update
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2020-12-30 07:23:24 +11:00
1debc820fa
[DOCS] Fix typo in IPv6 address notes ( #1566 )
2020-12-30 06:33:57 +11:00
b12528a65c
[FEATURE] Display TOTP secret on device registration ( #1551 )
...
* This change provides the TOTP secret which allows users to copy and utilise for password managers and other applications.
* Hide TextField if secret isn't present
* This ensure that the TextField is removed on a page or if there is no secret present.
* Add multiple buttons and set default value to OTP URL
* Remove inline icon and add icons under text field which allow copying of the secret key and the whole OTP URL.
* Fix integration tests
* Add notifications on click for secret buttons
* Also remove autoFocus on TextField so a user can identify that the full OTP URL is in focus.
2020-12-29 13:30:00 +11:00
2763aefe81
[BUGFIX] Static Session Expiration Key ( #1564 )
...
* [BUGFIX] Static Session Expiration Key
* keys for session expiration are random for each instance of Authelia
* this is caused by upstream setting it to a random value
* using a temporary bugfix fork of github.com/fasthttp/session to resolve locally
* add some misc doc additions
2020-12-29 12:44:47 +11:00
251684fd4a
[MISC] (deps): Bump @types/node from 14.14.14 to 14.14.16 in /web ( #1561 )
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 14.14.14 to 14.14.16.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-12-24 08:31:46 +11:00
d478da50a5
[MISC] (deps): Bump axios from 0.21.0 to 0.21.1 in /web ( #1555 )
...
Bumps [axios](https://github.com/axios/axios ) from 0.21.0 to 0.21.1.
- [Release notes](https://github.com/axios/axios/releases )
- [Changelog](https://github.com/axios/axios/blob/v0.21.1/CHANGELOG.md )
- [Commits](https://github.com/axios/axios/compare/v0.21.0...v0.21.1 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2020-12-23 22:05:50 +11:00
ad3f4d233f
[MISC] (deps): Bump @fortawesome/react-fontawesome in /web ( #1556 )
...
Bumps [@fortawesome/react-fontawesome](https://github.com/FortAwesome/react-fontawesome ) from 0.1.13 to 0.1.14.
- [Release notes](https://github.com/FortAwesome/react-fontawesome/releases )
- [Changelog](https://github.com/FortAwesome/react-fontawesome/blob/master/CHANGELOG.md )
- [Commits](https://github.com/FortAwesome/react-fontawesome/compare/0.1.13...0.1.14 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-12-23 21:36:34 +11:00
e5504fa918
[MISC] Add Buildkite logo to badge ( #1554 )
2020-12-22 12:29:50 +11:00
336b32818a
[MISC] (deps): [Security] Bump node-notifier from 8.0.0 to 8.0.1 in /web ( #1553 )
...
Bumps [node-notifier](https://github.com/mikaelbr/node-notifier ) from 8.0.0 to 8.0.1. **This update includes a security fix.**
- [Release notes](https://github.com/mikaelbr/node-notifier/releases )
- [Changelog](https://github.com/mikaelbr/node-notifier/blob/v8.0.1/CHANGELOG.md )
- [Commits](https://github.com/mikaelbr/node-notifier/compare/v8.0.0...v8.0.1 )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2020-12-22 09:45:45 +11:00
39bb2d2d1a
Add config example for LDAP groupOfUniqueNames group structure ( #1549 )
...
* Add config example for groupOfUniqueNames group structure
* Update ldap.md
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2020-12-22 08:16:20 +11:00
d5904bdae4
[MISC] (deps): Bump arm32v7/alpine from 3.12.2 to 3.12.3 ( #1552 )
...
Bumps arm32v7/alpine from 3.12.2 to 3.12.3.
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-12-22 07:55:55 +11:00
ee3ce69f9f
[MISC] (deps): Bump alpine in /internal/suites/example/compose/kind ( #1548 )
...
Bumps alpine from 3.12.2 to 3.12.3.
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-12-19 14:11:31 +11:00
a9635aafd2
[MISC] (deps): Bump alpine from 3.12.2 to 3.12.3 ( #1547 )
...
Bumps alpine from 3.12.2 to 3.12.3.
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-12-19 12:55:57 +11:00
5ea3aebd44
[MISC] (deps): Bump arm32v7/alpine from 3.12.1 to 3.12.2 ( #1545 )
...
Bumps arm32v7/alpine from 3.12.1 to 3.12.2.
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-12-17 09:36:56 +11:00
18627d5869
[RELEASE] v4.24.1 ( #1543 )
2020-12-16 14:11:41 +11:00
b989c1b169
[MISC] Refactor and address most errcheck linter ignores ( #1511 )
...
* [MISC] Refactor and address most errcheck linter ignores
This is mostly a quality of life change.
When we first implemented the errcheck linter we ignored a number of items in our legacy codebase with intent to revisit down the track.
* Handle errors for regulation marks and remove unnecessary logging
2020-12-16 12:47:31 +11:00
7c6a86882f
[MISC] Catch OpenLDAP ppolicy error ( #1508 )
...
* [MISC] Catch OpenLDAP ppolicy error
Further to the discussion over at #361 , this change now ensures that OpenLDAP password complexity errors are caught and appropriately handled.
This change also includes the PasswordComplexity test suite in the LDAP integration suite. This is because a ppolicy has been setup and enforced.
* Remove password history for integration tests
* Adjust max failures due to regulation trigger
* Fix error handling for password resets
* Refactor and include code suggestions
2020-12-16 12:30:03 +11:00
52e6435896
[DOCS] Add Discord badge to README.md ( #1542 )
...
* [DOCS] Add Discord badge to README.md
* add to contact section
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2020-12-16 12:08:51 +11:00
f2282f78a9
[DOCS] Add notes for IPv6 literal address ( #1541 )
2020-12-16 11:31:39 +11:00
a7968bc77b
[DOCS] Update hash-password example with single quotes ( #1537 )
...
* [Doc] Single quote the hash-password input
Closes #1536
* Update docs/configuration/authentication/file.md
Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2020-12-16 11:07:51 +11:00
86c4577127
[DOCS] Add a note on regexps in ACLs ( #1533 )
...
Fixes #1523
2020-12-16 11:00:58 +11:00
21fd616f8c
[MISC] (deps): Bump @types/node from 14.14.13 to 14.14.14 in /web ( #1540 )
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 14.14.13 to 14.14.14.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: Amir Zarrinkafsh <nightah@me.com>
2020-12-16 10:35:59 +11:00
b5e23f3392
[MISC] (deps): Bump arm64v8/alpine from 3.12.1 to 3.12.2 ( #1539 )
...
Bumps arm64v8/alpine from 3.12.1 to 3.12.2.
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-12-15 22:29:24 +01:00
7c4abf7b26
[MISC] (deps): Bump @types/node from 14.14.12 to 14.14.13 in /web ( #1530 )
...
Bumps [@types/node](https://github.com/DefinitelyTyped/DefinitelyTyped/tree/HEAD/types/node ) from 14.14.12 to 14.14.13.
- [Release notes](https://github.com/DefinitelyTyped/DefinitelyTyped/releases )
- [Commits](https://github.com/DefinitelyTyped/DefinitelyTyped/commits/HEAD/types/node )
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2020-12-14 13:19:35 +11:00
c14af472dd
[MISC] (deps): Bump alpine in /internal/suites/example/compose/kind ( #1531 )
...
Bumps alpine from 3.12.1 to 3.12.2.
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
Co-authored-by: James Elliott <james-d-elliott@users.noreply.github.com>
2020-12-14 09:12:55 +11:00
ceee1f1bb0
[MISC] (deps): Bump alpine from 3.12.1 to 3.12.2 ( #1532 )
...
Bumps alpine from 3.12.1 to 3.12.2.
Signed-off-by: dependabot-preview[bot] <support@dependabot.com>
Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>
2020-12-14 07:50:55 +11:00
Andrew Kliskey
Amir Zarrinkafsh
dependabot-preview[bot]
James Elliott
Kristof Mattei
ZMiguel Valdiviesso
Begley Brothers (Development)
Clément Michaud